Director of IAM Engineering- PAM (Hybrid)

Who We AreJoin a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for nine consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

What We DoThe Identity & Access PAM team is responsible for the design, implementation, and support of Privilege Management controls for the company. Managing through the CyberArk technologies this role manages a global workforce focused on securing Human, Non-Human and extended services that use any entitlement that may have a Privilege access. This role will interface with multiple stakeholders including InfoSec partners, business stakeholders and GRC/Audit colleagues. This role includes managing Vendor services.

What You’ll Do

• Management responsibilities over PAM Engineering and Operational functions.
• Implementation of CyberArk policies of controls, enforcement, and reporting outcomes.
• PAM Metric development for executive review.
• Works closely within the IAM team to implement PAM integration of Privilege entitlements from multiple platforms into CyberArk.  
• Identifies IAM workflows for system privilege entitlements and business process requirements and related solutions over a complete business process including obtaining approvals, documentation, testing and training.
• Works in close coordination with the Business System Administrators with Process Analysts to understand and interpret IAM requirements per application & initiative.
• Considers the business implications of a PAM workflow and processes to the current business environment.
• Identifies problems, researches alternatives, prepares presentations, drives solutions, tests to confirm, gains consensus, and implements solutions for multiple processes within multiple functions.
• Creates reports; researches and analyzes data, report trends and vital information to management/business partner.
• Provides direct support of PAM to IAM systems development and business community regarding risks associated with new or changing technologies.
• Keeps abreast of industry advancements and incorporates that knowledge into daily work activities.
• Participates in evaluation and selection of new technology.
• Resolves provisioning /deprovisioning problems to obtain operations across all platforms including email, files transfer, multimedia.
• Monitors and reports to management on the status of IAM project efforts, anticipating and identifying complex issues that inhibit the attainment of project goals and implementing corrective actions.
• Required to perform duties outside of normal work hours based on business needs.

What You’ll Bring

• 7+ years of experience working with highly scalable PAM technologies consisting of (5+) years of proven experience working with commercial PAM products. Experience supporting a sizeable enterprise (preferably 5,000+ employees/Identities), including development of solutions for Identity Management PAM solutions.
• 3+ years of operational experience with ongoing maintenance of Identity and Access Management (PAM) solutions, including Identity and User Account Management IGA -SailPoint platforms.
• Knowledge and understanding of underlying components and technologies of a CyberArk system to include CPM, EPM, PTA, ERS- reporting.
• Ability to gather identity data via SQL and LDAP queries for analysis and troubleshooting purposes.
• Experience in PAM- COTS product evaluation and managing vendor relationships required.
• CyberArk or BeyondTrust PAM technologies.  System architecture and Policy development for CPM and PTA modules.
• Solid understanding of scripting and programming languages as well as software development methodologies that integrate with CyberArk.
• Experience with the configuration and maintenance of CyberArk infrastructure including API integrations.
• Solid experience with Identity directories, such as LDAP, Active Directory and EntraID.
• Solid communication and documentation skills
• Excellent interpersonal, relationship-building and teamwork skills
• Ability to work in a team environment and to contribute to multiple projects at once.
• Uses skills as a seasoned, experienced PAM professional with extensive knowledge base of industry practices and established policies and procedures.
• Exercises wide latitude in determining objectives and approaches to critical assignments.
• Errors will have significant business and fiscal impact.
• Director Level management responsibility for the supervision of others but may also provide functional advice or training to less experienced team members.
•  Instructs, direct, and assign work to other team members, monitoring project status.
• Function as a Program leader for projects with moderate budgets or of a short to intermediate duration.
• Works independently with supervisory consultation.
• Sets objectives for project goals and other team members and monitors progress to achieve goals. 
• Devises or modifies department processes and procedures.
• Negotiates, persuades, and gains consensus from cross functional team(s).
• High School Diploma required.
• BS/BA in Computer Science or relevant education

*Candidates in consideration of this role must be available to work hybrid 3 times a week to the Santa Ana, CA campus*

Salary Range: $166,800.00 - $222,300.00

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting.  Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location

What We OfferBy choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.

** Note that the following statements only apply to candidates who will be working from an unincorporated area within Los Angeles County. **

First American will consider for employment all qualified applicants, including those with arrest or conviction records, in a manner consistent with the requirements of applicable state and local laws (e.g., the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act).

First American intends to conduct a review of an applicant’s criminal history in connection with a conditional offer. First American reasonably believes that a criminal history may have a direct, adverse and negative relationship with the following material job duties for this position potentially resulting in the withdrawal of the conditional offer of employment: handling of confidential, proprietary or trade secret information belonging to First American or its customers, administrating or facilitating financial transactions, and the ability to meet customer-imposed criminal history requirements.

Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.